CVE-2026-23631

CVE-2026-23631

Name

CVE-2026-23631

Description

Redis is an in-memory data structure store. In all versions of redis-server with Lua scripting, an authenticated attacker can exploit the master-replica synchronization mechanism to trigger a use-after-free on replicas where replica-read-only is disabled or can be disabled, which may lead to remote code execution. A workaround is to prevent users from executing Lua scripts or avoid using replicas where replica-read-only is disabled. This is patched in version 8.6.3.

NVD Severity

unknown

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
security-advisories@github.com	https://github.com/redis/redis/releases/tag/8.6.3
security-advisories@github.com	https://github.com/redis/redis/security/advisories/GHSA-8ghh-qpmp-7826

Type

URI

security-advisories@github.com

https://github.com/redis/redis/releases/tag/8.6.3

security-advisories@github.com

https://github.com/redis/redis/security/advisories/GHSA-8ghh-qpmp-7826

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:redis:redis::::::::`	redis	>= None	< 8.6.3

CPE URI

Source package

Min version

Max version

cpe:2.3:a:redis:redis:*:*:*:*:*:*:*:*

redis

>= None

< 8.6.3

Vulnerable and fixed packages

Source package	Branch	Version	Maintainer	Status
valkey	edge-main	9.0.4-r0	Jakub Jirutka <jakub@jirutka.cz>	fixed
valkey	3.23-main	9.0.4-r0	Jakub Jirutka <jakub@jirutka.cz>	fixed
valkey	3.22-main	8.1.7-r0	Jakub Jirutka <jakub@jirutka.cz>	fixed
valkey	3.21-main	7.2.13-r0	Jakub Jirutka <jakub@jirutka.cz>	fixed
valkey	3.20-main	7.2.13-r0	Jakub Jirutka <jakub@jirutka.cz>	fixed
redis	edge-main	7.2.4-r1	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.2.4-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.2.3-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.2.2-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.2.1-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.2.0-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.12-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.11-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.10-r1	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.10-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.9-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.8-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.7-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.6-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.5-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	7.0.4-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	6.2.7-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	6.2.6-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	6.2.5-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	6.2.4-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-main	6.2.0-r0	None	possibly vulnerable
redis	edge-main	6.0.3-r0	None	possibly vulnerable
redis	edge-main	5.0.8-r0	None	possibly vulnerable
redis	edge-main	5.0.4-r0	None	possibly vulnerable
redis	edge-community	8.6.2-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.6.1-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.6.0-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.4.1-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.4.0-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.2.3-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.2.2-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.2.1-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.2.0-r1	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	edge-community	8.2.0-r0	fossdd <fossdd@pwned.life>	possibly vulnerable
redis	edge-community	8.0.3-r0	fossdd <fossdd@pwned.life>	possibly vulnerable
redis	edge-community	8.0.2-r0	fossdd <fossdd@pwned.life>	possibly vulnerable
redis	edge-community	8.0.1-r0	fossdd <fossdd@pwned.life>	possibly vulnerable
redis	edge-community	8.0.0-r0	fossdd <fossdd@pwned.life>	possibly vulnerable
redis	edge-community	7.2.7-r0	fossdd <fossdd@pwned.life>	possibly vulnerable
redis	edge-community	7.2.5-r2	fossdd <fossdd@pwned.life>	possibly vulnerable
redis	edge-community	7.2.5-r1	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-community	7.2.5-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-community	7.2.4-r1	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	edge-community	7.2.4-r0	None	possibly vulnerable
redis	edge-community	7.2.2-r0	None	possibly vulnerable
redis	edge-community	7.2.1-r0	None	possibly vulnerable
redis	edge-community	7.0.12-r0	None	possibly vulnerable
redis	edge-community	7.0.8-r0	None	possibly vulnerable
redis	edge-community	7.0.6-r0	None	possibly vulnerable
redis	edge-community	7.0.5-r0	None	possibly vulnerable
redis	edge-community	7.0.4-r0	None	possibly vulnerable
redis	edge-community	6.2.7-r0	None	possibly vulnerable
redis	edge-community	6.2.6-r0	None	possibly vulnerable
redis	edge-community	6.2.5-r0	None	possibly vulnerable
redis	edge-community	6.2.4-r0	None	possibly vulnerable
redis	edge-community	6.2.0-r0	None	possibly vulnerable
redis	edge-community	6.0.3-r0	None	possibly vulnerable
redis	edge-community	5.0.8-r0	None	possibly vulnerable
redis	edge-community	5.0.4-r0	None	possibly vulnerable
redis	3.23-community	8.4.2-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	3.23-community	8.4.1-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	3.23-community	8.4.0-r0	Achill Gilgenast <achill@achill.org>	possibly vulnerable
redis	3.19-main	7.2.9-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.19-main	7.2.8-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.19-main	7.2.7-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.19-main	7.2.4-r1	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.19-main	7.2.4-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.19-main	7.2.3-r0	TBK <alpine@jjtc.eu>	possibly vulnerable
redis	3.19-main	7.2.2-r0	None	possibly vulnerable
redis	3.19-main	7.2.1-r0	None	possibly vulnerable
redis	3.19-main	7.0.12-r0	None	possibly vulnerable
redis	3.19-main	7.0.8-r0	None	possibly vulnerable
redis	3.19-main	7.0.6-r0	None	possibly vulnerable
redis	3.19-main	7.0.5-r0	None	possibly vulnerable
redis	3.19-main	7.0.4-r0	None	possibly vulnerable
redis	3.19-main	6.2.7-r0	None	possibly vulnerable
redis	3.19-main	6.2.6-r0	None	possibly vulnerable
redis	3.19-main	6.2.5-r0	None	possibly vulnerable
redis	3.19-main	6.2.4-r0	None	possibly vulnerable
redis	3.19-main	6.2.0-r0	None	possibly vulnerable
redis	3.19-main	6.0.3-r0	None	possibly vulnerable
redis	3.19-main	5.0.8-r0	None	possibly vulnerable
redis	3.19-main	5.0.4-r0	None	possibly vulnerable

Source package

Branch

Version

Maintainer

Status

valkey

edge-main

9.0.4-r0

Jakub Jirutka <jakub@jirutka.cz>

fixed

valkey

3.23-main